Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227121 2.1 注意 The phpMyAdmin Project - phpMyAdmin における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-1567 2012-12-20 18:52 2008-03-29 Show GitHub Exploit DB Packet Storm
227122 6.8 警告 topper - TopperMod の account/index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1554 2012-12-20 18:52 2008-03-31 Show GitHub Exploit DB Packet Storm
227123 6.8 警告 topper - TopperMod の mod.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-1553 2012-12-20 18:52 2008-03-31 Show GitHub Exploit DB Packet Storm
227124 6.8 警告 silcnet - SILC Toolkit などの silcpkcs1.c における任意のコードを実行される脆弱性 CWE-189
数値処理の問題 		CVE-2008-1552 2012-12-20 18:52 2008-03-31 Show GitHub Exploit DB Packet Storm
227125 7.5 危険 runcms - RunCMS 用の Photo モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1551 2012-12-20 18:52 2008-03-31 Show GitHub Exploit DB Packet Storm
227126 6.8 警告 powerscripts - PowerScripts PowerBook の pb_inc/admincenter/index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-1537 2012-12-20 18:52 2008-03-28 Show GitHub Exploit DB Packet Storm
227127 4.3 警告 PicturesPro - Pictures Pro Photo Cart の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1536 2012-12-20 18:52 2008-03-28 Show GitHub Exploit DB Packet Storm
227128 7.5 危険 powerscripts - PowerPHPBoard におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-1534 2012-12-20 18:52 2008-03-28 Show GitHub Exploit DB Packet Storm
227129 5 警告 ZyXEL - ZyXEL Prestige ルータにおけるパスワードを予測される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2008-1529 2012-12-20 18:52 2008-03-26 Show GitHub Exploit DB Packet Storm
227130 4 警告 ZyXEL - ZyXEL Prestige ルータにおける認証データを取得される脆弱性 CWE-287
不適切な認証 		CVE-2008-1528 2012-12-20 18:52 2008-03-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
951 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: xfs: scrub: unlock dquot before early return in quota scrub xchk_quota_item can return early after calling xchk_fblock_process_er… NVD-CWE-noinfo
CVE-2026-31556 2026-04-28 05:14 2026-04-25 Show GitHub Exploit DB Packet Storm
952 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: LoongArch: Fix missing NULL checks for kstrdup() 1. Replace "of_find_node_by_path("/")" with "of_root" to avoid multiple calls to… CWE-476
 NULL Pointer Dereference 		CVE-2026-31559 2026-04-28 05:13 2026-04-25 Show GitHub Exploit DB Packet Storm
953 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: wifi: rt2x00usb: fix devres lifetime USB drivers bind to USB interfaces and any device managed resources should have their lifeti… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2026-31672 2026-04-28 05:11 2026-04-25 Show GitHub Exploit DB Packet Storm
954 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: xfrm_user: fix info leak in build_report() struct xfrm_user_report is a __u8 proto field followed by a struct xfrm_selector which… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2026-31671 2026-04-28 05:11 2026-04-25 Show GitHub Exploit DB Packet Storm
955 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: net: rfkill: prevent unlimited numbers of rfkill events from being created Userspace can create an unlimited number of rfkill eve… NVD-CWE-noinfo
CVE-2026-31670 2026-04-28 05:10 2026-04-25 Show GitHub Exploit DB Packet Storm
956 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: xfrm: clear trailing padding in build_polexpire() build_expire() clears the trailing padding bytes of struct xfrm_user_expire aft… NVD-CWE-noinfo
CVE-2026-31664 2026-04-28 04:59 2026-04-25 Show GitHub Exploit DB Packet Storm
957 9.1 CRITICAL
Network 		microsoft asp.net_core Improper verification of cryptographic signature in ASP.NET Core allows an unauthorized attacker to elevate privileges over a network. CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2026-40372 2026-04-28 04:57 2026-04-22 Show GitHub Exploit DB Packet Storm
958 3.7 LOW
Network 		bacnetstack bacnet_stack BACnet Stack is a BACnet open source protocol stack C library for embedded systems. Prior to 1.4.3, decode_signed32() in src/bacnet/bacint.c reconstructs a 32-bit signed integer from four APDU bytes … CWE-758
 Reliance on Undefined, Unspecified, or Implementation-Defined Behavior 		CVE-2026-40279 2026-04-28 04:49 2026-04-22 Show GitHub Exploit DB Packet Storm
959 6.8 MEDIUM
Network 		oauth2_proxy_project oauth2_proxy OAuth2 Proxy is a reverse proxy that provides authentication using OAuth2 providers. Prior to 7.15.2, an authorization bypass exists in OAuth2 Proxy as part of the email_domain enforcement option. An… CWE-863
 Incorrect Authorization 		CVE-2026-40574 2026-04-28 04:49 2026-04-22 Show GitHub Exploit DB Packet Storm
960 7.5 HIGH
Network 		ransomlook ransomlook RansomLook is a tool to monitor Ransomware groups and markets and extract their victims. Prior to 1.9.0, the API in the affected application improperly filters private location entries in website/web… CWE-200
Information Exposure 		CVE-2026-40584 2026-04-28 04:47 2026-04-22 Show GitHub Exploit DB Packet Storm